Здравствуйте все.
ОБращаюсь к знатокам. Я переустановила самбу и ldap, вроде все конфиги верные, но при попытке завести юзеров он выдает сообщение:
smbldap-useradd -a -m saur
failed to perform search; No such object at /usr/local/lib/perl5/site_perl/5.8.5/smbldap_tools.pm line 245, <DATA> line 283.
Error looking for next uid at /usr/local/lib/perl5/site_perl/5.8.5/smbldap_tools.pm line 873, <DATA> line 283.я уже неделю с ней бьюсь незнаю куда ткнуться, кучу доков перевернула.
вот конфиги:
самба
[global]
display charset = KOI8-R
ldap ssl = start tls
name resolve order = lmhosts wins bcast hosts
idmap gid = 10000-20000
show add printer wizard = No
time server = Yes
level2 oplocks = no
allow hosts = 192.168.11. 127.
dns proxy = yes
oplocks = no
netbios name = SAMBA
writable = yes
locking = no
logon script = %U.bat
idmap uid = 10000-20000
dos charset = CP866
# admin user = saur
local master = yes
workgroup = KINO
os level = 255
ldap admin dn = cn=saur,dc=kino.kamchatka,dc=ru
security = user
delete user script = /usr/local/sbin/smbldap-userdel '%u'
max log size = 100
log level = 8
log file = /var/log/samba/%m
ldap user suffix = ou=users
smb ports = 139 445
socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
wins server = 127.0.0.1
logon drive = X:
null passwords = yes
interfaces = xl1, lo0
domain master = Yes
idmap backend = ldap:ldap://127.0.0.1:389
encrypt passwords = yes
ldap server = kino.kamchatka.ru
passdb backend = ldapsam:ldap://localhost
ldap machine suffix = ou=users
ldap port = 389
ldap filter = "(&(uid=%u)(objectclass=sambaAccount))"
ldap suffix = dc=kino.kamchatka,dc=ru
add user script = /usr/local/sbin/smbldap-useradd -a -m '%u'
syslog = 0
unix charset = KOI8-R
bind interfaces only = Yes
domain logons = Yes
#username map = /usr/local/etc/smbusers
#printcap name = CUPS[homes]
comment = %u Home Directories
valid users = %S
writable = Yes
browseable = No
#directory mask = 0777
#create mask = 0777
#[printers]
#comment = SMB Print Spool
#path = /var/spool/samba
#guest ok = Yes
#printable = Yes
#browseable = No[install]
comment = Application Installation Files
path = /usr/net_share/install
valid users = Saur
read only = No
[netlogon]
comment = Network Logon Service
path = /usr/local/samba/netlogon
guest ok = Yes
locking = No
#[profiles]
#comment = Profile Share
#path = /usr/net_share/profiles
#read only = No
#profile acls = Yes
[logfiles]
comment = FreeBSD logfiles
path = /var/log
valid users = Saur
read only = No[share]
comment = Share folder for user
path = /usr/net_share/share
#admin users = Saur
guest ok = Yes
read only = No
directory mask = 0777
create mask = 0777[WWW]
comment = Webserver Root Folder
path = /usr/webservers
admin users = Saur
guest ok = no
write list = Saur
read only = yesи Ldap
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/misc.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/openldap.schema
include /usr/local/etc/openldap/schema/samba.schema#Define global ACLs to disable default read access.
#Do not enable referrals until AFTER you have a working directory
#service AND an understanding of referrals.
#referral ldap://root.openldap.orgpidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args#TLSCipherSuite HIGH:MEDIUM:+SSLv2:+TLSv1
#TLSCertificateFile /usr/local/etc/openldap/ldap.csr
#TLSCertificateKeyFile /usr/local/etc/openldap/ldap.key#Load dynamic backend modules
#modulepath /usr/local/libexec/openldap
#modulepath back_bdb
#modulepath back_ldap
#modulepath back_ldbm
#modulepath back_passwd
#modulepath back_shelldatabase ldbm
suffix "dc=kino,dc=ru"
rootdn "cn=saur,dc=kino,dc=ru"
rootpw {SSHA}EFY1y0ArXBfKJx5yI82uFD6w0t22OK9W
loglevel 256
#The database directory MUST exist prior to runnig slapd AND
#should only be accessible by the slapd and slap tools.
#Mode recommended.
directory /var/db/openldap-dataindex objectClass eq
index cn sub,eq
index mail sub
index sn pres,sub,eq
index uid eq
index displayName pres,sub,eq
index uidNumber eq
index gidNumber eq
index memberUID eq
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub#Basic ACL
by self write
by anonymous authby dn="cn=root,ou=users,dc=kino,dc=ru" write
by * none
by * readreplogfile /var/log/slapd.log
настраивала по ссылке- http://rrv.jino-net.ru/Samba3.htm
возможно помогут последние тулзы:
http://www.idealx.org/prj/samba/dist/smbldap-tools-0.9.1.tgz
>возможно помогут последние тулзы:
>http://www.idealx.org/prj/samba/dist/smbldap-tools-0.9.1.tgzобновила тулзы, но безрезультатно, выдает ту же ошибку
>>возможно помогут последние тулзы:
>>http://www.idealx.org/prj/samba/dist/smbldap-tools-0.9.1.tgz
>
>обновила тулзы, но безрезультатно, выдает ту же ошибку
так это.. что я сразу не сообразил:
smb.conf:
ldap suffix = dc=kino.kamchatka,dc=ruslapd.conf:
suffix "dc=kino,dc=ruи скорей всего так же некорректно настроен smbldap.conf из smbldap-tools
>[оверквотинг удален]
>
>
>так это.. что я сразу не сообразил:
>smb.conf:
>ldap suffix = dc=kino.kamchatka,dc=ru
>
>slapd.conf:
>suffix "dc=kino,dc=ru
>
>и скорей всего так же некорректно настроен smbldap.conf из smbldap-toolsСтолкнулся с такой же проблемой...Установлена последняя версия тулзы из rpm, суффиксы везде прописаны правильно. Есть ещё идеи ?
Установил последние тулзы из tar.gz - проблема осталась =((( HELP !!!